Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Researchers at Bitdefender warn that Netflix-themed phishing attacks can have far-reaching consequences if users follow poor security practices. While Netflix is generally associated with a user’s personal life, phishing attacks targeting personal accounts can put users’ employers at risk. “Your Netflix account is just the starting point. It’s not the final target,” Bitdefender says. “Most people reuse passwords across multiple platforms.

AI agents are already inside most enterprise environments. They complete tasks, connect to live systems, and make decisions that used to require a human. Gartner projects that 40% of enterprise applications will include task-specific AI agents by the end of 2026, up from less than 5% today. What was an experiment two years ago is now a core part of how work gets done. If your organization is adopting AI agents or planning to, security is not something you can figure out later.

Security no longer works the way it used to. Relying on passwords alone is no longer enough to protect modern systems. Credentials are easily stolen, reused, or compromised, while users are increasingly frustrated with repeated login prompts and complex authentication steps. At the same time, access patterns have changed. Employees work remotely, applications run in the cloud, and users log in from different devices and locations throughout the day.

SaaS sprawl means more credentials, more exposure and more manual work for IT teams. Every cloud service an organization adds is another set of passwords that needs to be created, managed and eventually rotated, and most teams are still doing that by hand. SaaS Configuration gives organizations a scalable way to automate password rotation across any number of Privileged Access Management (PAM) User records in the Keeper Vault, keeping credentials current without the manual overhead.

SaaS companies face a 20% yearly likelihood of a significant DDoS attack, according to the Indusface State of Application Security H1 2025, underlining the risks to uninterrupted operations. Even brief downtime can have severe consequences. On average, a DDoS attack costs businesses$6,130 per minute in downtime losses. For SaaS platforms, one attack hits every tenant at once, multiplying the SLA breaches, churn risk, and reputational damage across the entire customer base simultaneously.

Enabling seamless user access without compromising security is a complex challenge. Gaurav Sheth, Cynthia Yang and Sorabh Chopra are helping to change that. As part of Kroll’s recently established team dedicated to Digital Identity, their focus is on transforming fragmented administration, manual processes and siloed identity solutions into mature programs.

AI usage is invisible to most security tools. Network monitoring sees HTTPS traffic. Endpoint detection sees browser activity. CASB platforms see cloud application access. None of them sees what employees type into AI prompts or upload to AI services through web forms. This invisibility creates a problem. Organizations can’t prove they didn’t expose customer data through AI because they can’t see the data that employees shared.